CVE-2022-50876

NONE EPSS 9.5%
Published Dec 30, 20256mo ago · Modified Jun 17, 20261w ago
Find Similar
Published Dec 30, 2025 6mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: usb: musb: Fix musb_gadget.c rxstate overflow bug The usb function device call musb_gadget_queue() adds the passed request to musb_ep::req_list,If the (request->length > musb_ep->packet_sz) and (is_buffer_mapped(req) return false),the rxstate() will copy all data in fifo to request->buf which may cause request->buf out of bounds. Fix it by add the length check : fifocnt = min_t(unsigned, request->length - request->actual, fifocnt);

Threat Intelligence

EPSS Exploit Probability
9.5% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

References 9

  • git.kernel.org https://git.kernel.org/stable/c/3c84c7f592c4ba38f54ddaddd0115acc443025db
  • git.kernel.org https://git.kernel.org/stable/c/523313881f0aa5cbbdb548ce575b6e58b202bd76
  • git.kernel.org https://git.kernel.org/stable/c/7c80f3a918ba9aa26fb699ee887064ec3af0396a
  • git.kernel.org https://git.kernel.org/stable/c/826f84ab04a5cafe484ea9c2c85a3930068e5cb7
  • git.kernel.org https://git.kernel.org/stable/c/a1008c8b9f357691ce6a8fdb8f157aecb2d79167
  • git.kernel.org https://git.kernel.org/stable/c/a9ccd2ab1becf5dcb6d57e9fcd981f5eaa606c96
  • git.kernel.org https://git.kernel.org/stable/c/acf0006f2b2b2ca672988875fd154429aafb2a9b
  • git.kernel.org https://git.kernel.org/stable/c/d6afcab1b48f4051211c50145b9e91be3b1b42c9
  • git.kernel.org https://git.kernel.org/stable/c/eea4c860c3b366369eff0489d94ee4f0571d467d

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.